Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 30, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202711 7.8 危険 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の do_insn_fetch 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2009-4031 2010-01-26 11:47 2009-11-29 Show GitHub Exploit DB Packet Storm
202712 7.8 危険 サイバートラスト株式会社
Linux
レッドハット
- Linux Kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-3613 2010-01-26 11:38 2009-10-19 Show GitHub Exploit DB Packet Storm
202713 4.6 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の NFSv4 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-3286 2010-01-26 11:38 2009-09-22 Show GitHub Exploit DB Packet Storm
202714 4.9 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux Kernel の d_delete 関数における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2009-2908 2010-01-26 11:38 2009-10-13 Show GitHub Exploit DB Packet Storm
202715 7.2 危険 サイバートラスト株式会社
Linux
レッドハット
- Linux Kernel における権限昇格の脆弱性 CWE-119
バッファエラー
CVE-2009-2695 2010-01-26 11:38 2009-08-28 Show GitHub Exploit DB Packet Storm
202716 9.3 危険 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
レッドハット
- JDK および JRE の Sun Java SE にある Deployment Toolkit プラグインにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-3865 2010-01-26 11:37 2009-11-3 Show GitHub Exploit DB Packet Storm
202717 4.9 警告 サイバートラスト株式会社
Linux
レッドハット
- Linux kernel の tc_fill_tclass 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2009-3228 2010-01-26 11:37 2009-10-19 Show GitHub Exploit DB Packet Storm
202718 9.3 危険 マイクロソフト - Microsoft Windows の Indeo32 コーデックの ir32_32.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2009-4313 2010-01-25 11:53 2009-12-8 Show GitHub Exploit DB Packet Storm
202719 9.3 危険 マイクロソフト - Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-4312 2010-01-25 11:52 2009-12-8 Show GitHub Exploit DB Packet Storm
202720 9.3 危険 マイクロソフト - Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-4311 2010-01-25 11:52 2009-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 30, 2024, 4:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
141 8.8 HIGH
Network
fabianros blood_bank_management_system A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of th… New CWE-89
SQL Injection
CVE-2024-10416 2024-10-30 05:21 2024-10-27 Show GitHub Exploit DB Packet Storm
142 8.8 HIGH
Network
fabianros blood_bank_management_system A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the … New CWE-89
SQL Injection
CVE-2024-10417 2024-10-30 05:19 2024-10-27 Show GitHub Exploit DB Packet Storm
143 5.4 MEDIUM
Network
ninjateam gdpr_ccpa_compliance_\&_cookie_consent_banner The GDPR CCPA Compliance & Cookie Consent Banner plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions named ajaxUpdateSetting… Update CWE-862
 Missing Authorization
CVE-2024-5607 2024-10-30 05:08 2024-06-7 Show GitHub Exploit DB Packet Storm
144 7.6 HIGH
Physics
dell vostro_5625_firmware
vostro_5515_firmware
vostro_5415_firmware
vostro_3405_firmware
vostro_16_5635_firmware
vostro_15_3535_firmware
vostro_15_3525_firmware
vostro_15_3515_firmwar…
Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system. Update CWE-353
 Missing Support for Integrity Check
CVE-2023-32475 2024-10-30 05:04 2024-06-7 Show GitHub Exploit DB Packet Storm
145 5.4 MEDIUM
Network
pickplugins post_grid The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' attribute in bloc… Update CWE-79
Cross-site Scripting
CVE-2024-1988 2024-10-30 04:54 2024-06-7 Show GitHub Exploit DB Packet Storm
146 7.5 HIGH
Network
qodeinteractive qi_addons_for_elementor The Qi Addons For Elementor plugin for WordPress is vulnerable to Remote File Inclusion in all versions up to, and including, 1.7.2 via the 'behavior' attributes found in the qi_addons_for_elementor_… Update CWE-706
 Use of Incorrectly-Resolved Name or Reference
CVE-2024-4887 2024-10-30 04:52 2024-06-7 Show GitHub Exploit DB Packet Storm
147 5.4 MEDIUM
Network
nayrathemes clever_fox The Clever Fox – One Click Website Importer by Nayra Themes plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'clever-fox-activate-theme… Update CWE-862
 Missing Authorization
CVE-2023-6876 2024-10-30 04:50 2024-06-7 Show GitHub Exploit DB Packet Storm
148 5.4 MEDIUM
Network
lightpress lightbox The WP jQuery Lightbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ attribute in all versions up to, and including, 1.5.4 due to insufficient input sanitization a… Update CWE-79
Cross-site Scripting
CVE-2024-5425 2024-10-30 04:49 2024-06-7 Show GitHub Exploit DB Packet Storm
149 5.3 MEDIUM
Network
themefarmer woocommerce_tools The WooCommerce Tools plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the woocommerce_tool_toggle_module() function in all versions up to,… Update CWE-862
 Missing Authorization
CVE-2024-1689 2024-10-30 04:49 2024-06-7 Show GitHub Exploit DB Packet Storm
150 5.4 MEDIUM
Network
nayrathemes clever_fox The Clever Fox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's info box block in all versions up to, and including, 25.2.0 due to insufficient input sanitization an… Update CWE-79
Cross-site Scripting
CVE-2024-1768 2024-10-30 04:44 2024-06-7 Show GitHub Exploit DB Packet Storm